1
22
23 package com.liferay.portal.kernel.servlet;
24
25 import com.liferay.portal.kernel.log.Log;
26 import com.liferay.portal.kernel.log.LogFactoryUtil;
27 import com.liferay.portal.kernel.util.GetterUtil;
28
29 import java.io.Serializable;
30
31 import javax.servlet.ServletContext;
32 import javax.servlet.http.HttpSession;
33 import javax.servlet.http.HttpSessionAttributeListener;
34 import javax.servlet.http.HttpSessionBindingEvent;
35
36
42 public class SerializableSessionAttributeListener
43 implements HttpSessionAttributeListener {
44
45 public void attributeAdded(HttpSessionBindingEvent event) {
46 String name = event.getName();
47 Object value = event.getValue();
48
49 if (!(value instanceof Serializable)) {
50 _log.error(
51 value.getClass().getName() +
52 " is not serializable and will prevent this session from " +
53 "being replicated");
54
55 if (_requiresSerializable == null) {
56 HttpSession session = event.getSession();
57
58 ServletContext servletContext = session.getServletContext();
59
60 _requiresSerializable = Boolean.valueOf(
61 GetterUtil.getBoolean(
62 servletContext.getInitParameter(
63 "session-attributes-requires-serializable")));
64 }
65
66 if (_requiresSerializable) {
67 HttpSession session = event.getSession();
68
69 session.removeAttribute(name);
70 }
71 }
72 }
73
74 public void attributeRemoved(HttpSessionBindingEvent event) {
75 }
76
77 public void attributeReplaced(HttpSessionBindingEvent event) {
78 attributeAdded(event);
79 }
80
81 private static Log _log =
82 LogFactoryUtil.getLog(SerializableSessionAttributeListener.class);
83
84 private Boolean _requiresSerializable;
85
86 }